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SPECIFICATION 
TITLE 

METHOD AND ARRANGEMENT FOR FORMING A SECRET COMMUNICATION 
KEY FOR A PREDETERMINED ASYMMETRIC CRYPTOGRAPHIC KEY PAIR 
BACKGROUND OF THE INVENTION 

Field of the Invention 

1 The invention relates to a method and an arrangement for forming a secret 
communication key for a predetermined asymmetric key pair. 



Description of the Related Art 

2 The formation of an asymmetric cryptographic key pair is known from C. 
Ruland, Informationssicherheit in Datennetzen, ISBN 3-89238-081-3, 
PATACOM-Verlag, page 79 - 85, 1993 (Ruland I), which discloses fl4l 

G i v e n this m e thod,] the RSA method for forming a cryptographic key pair, which 
comprises a secret (private) key and a corresponding public key [, is form e d] . Only 
the user knows the [ se cr e t] private kevk l, but the public key can be made known to 
all subscribers of a communication network. In this method, the [Th e ] user signs 
the data with his [ sec r e t] private key when a digital signature is prepared for 
protecting the authenticity and integrity of electronic data. The signed digital 
signature is verified upon utilization of the public key corresponding to the [ se cr e t] 
private key, so that the authenticity or [, r es p e ct i v el y,] integrity of the digital signature 
can be checked by all communication partners, [wh i ch] who have access to the 
public key. The [afor e m e ntion e d what i s r e f e rr e d to as APubl i c - K e y - 
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Technology@] previouslv mentioned "Public-Key-Technology" is particularly 
applied in the digital communication within a computer network (a fixed number of 
computer units, which are connected to one another via a communication network). 
Given the method known from f£4fl Ruland . the protection of the [ se cr e t] private key 
against unauthorized access of a third party is of critical importance for the security 
of the digital signature. 

3 It is known from #2$ D. Lonqley and M. Shain, Data & Computer Security, 
Dictionary of standards concepts and terms, Stockton Press, ISBN 0-333- 
42935*4, page 317, 1987 (Longlev) to store the [ se cr e t] private key on an external 
medium for storing data, for example^ a chip card, a disk etc., or on a hard disk, 
[wh e r e by] where key data are protected in that a personal identification code 
(Personal Identification Number, PIN) or a password, with which the key data that 
are respectively deciphered is used. It is necessary, however, to access the local 
resources of a user when these external media are used. This is not desired 
especially with respect to a network-oriented infrastructure of network computers or 
Java applications. These are defined as follows. A network computer is a 
computer [, wh i ch] that is networked with other computers : and af r 

AJ Java application is a program containing programs that are written in the 
programming language Java. The [Th e r e for e , th e ] method known from [ [ 2] i s 
as s oci a t e d w i th th e d is advantag e ] Longlev is disadvantageous in that the [ se cr e t] 
private key must be stored on an external medium, so that it is very difficult to 
protect the [ se cr e t] private key against misuse. 

4 An overview regarding hash functions can be found in {{3}} C. Ruland, 
Informationssicherheit in Datennetzen, ISBN 3-89238-081-3, DATACOM-Verlag, 
page 68 - 73, 1993 (Ruland II) . A hash function is a function [, wh e r ei n] in which it 
is possible to calculate a corresponding input value to a given function value. 
Furthermore, an output character string having a fixed length is allocated to an 
arbitrarily long input character string. Moreover, additional properties can be 
requested for the hash function f. Such a n additiona l prop e rty i s ] , such as collision 
freedom, [ i . e ., i t is not al l ow e d to b e po ssi b le to find] which precludes the 
possibility of finding two different input character strings resulting in the same 
output character string. Examples of a hash function are the method according to 
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the MD-2 standard, the method according to the MD-5 standard, the Data Encryption 
Standard (DES), which is carried out without utilizing a key, or any other arbitrary 
hash function. 

5 A method referred to as a [m e thod a ccord i ng to M ille r - Rab i n, wh e r ei n i t can 
b e ch ec k e d fo rl "Miller-Rabin" can determine whether a number [wh e th e r i t] is [a] 
prime [numb e r,] or not. Such a method is known from f[4H A. J. Menezes, P. van 
Oorschot and S. Vanstone. Handbook of Applied Cryptography, CRC Press, 
ISBN 0-8493-8523-7. page 138 - 140, 1997 (Menezes). 

[Th e r e for e , a n] SUMMARY OF THE INVENTION 

6 An object of the invention is to form a secret communication key for a 
predetermined asymmetric cryptographic key pair, [wh e r ei n] where the [ se cr e t] 
private key of the asymmetric key pair must not be stored permanently. 

7 The problem is solved by [th e m e thod and by th e arrang e m e nt w i th th e 
f ea tur es of th e ind e p e nd e nt pat e nt claims. 

J a method for forming a secret communication key for a predetermined 
asymmetric cryptographic key pair which comprises a private key and a 
corresponding public key, by a computer, comprising the steps of utilizing a 
prescribable initial value given a determination of the key pair; providing the 
Initial value to a user; entering, by the user, the initial value into the computer; 
and forming the secret communication key upon utilization of the initial value, 
the secret communication key and the public key forming an asymmetric 
cryptographic communication key pair. 

8 The problem is also solved by an arrangement comprising an input 
device configured for entering an initial value by a user; and a processor 
connected to the input device, the processor configured to implement the 
above method. 

9 Given the method for forming a secret communication key for a predetermined 
asymmetric cryptographic key pair, which comprises a [ se cr e t] private key and a 
corresponding public key, a prescribable initial value [ha s b ee n K that is available to 
a user) is used with respect to the determination of the key pair. [The initia l v al u e is 
avai l ab le to a u se r.] The user enters the initial value into the computer and the secret 
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communication key is formed upon utilization of the initial value. The secret 
communication key and the public key form a communication key pai r, which is not 
to be confused with the predetermined asymmetric cryptographic key pair. 
10f, 

} The arrangement for forming a secret communication key for a predetermined 
asymmetric cryptographic key pair, which comprises a [ se cr e t] private key and a 
corresponding public key, has a processor, which is set up such that the following 
steps can be carried out: 

- a prescribed initial value [h as b ee n] is used for determining the key pair, 

- the user enters the initial value into the computer, 

- the secret communication key is formed upon utilization of the initial value, 
[wh e r e by] where the secret communication key and the public key form a 
communication key pair. 

11 Furthermore, an input [m e an s ] device is provided for entering the initial value 
by the user. 

12 As a result of the invention, it is possible to erase the [ se cr e t] private key 
without having to forego the intense cryptography of the [APub li c - K e y - 
T e chnologv@1 "Public-Kev-Technoiogy" . 

Concretely, the initial value can be regarded as a personal identification code 
(Personal Identification Number^ PIN) or as a password that is prescribed by the user 
or that is centrally prescribed and that is entered by the user into the computer. After 
the password o r[, r e sp e ct i v el y,] the PIN has been entered, the secret communication 
key, i.e.* the key that is of the same name compared to the [ se cr e t] private key, is 
formed, which forms a [k e y pa i r, th e ] communication key pairH together with the 
public key (i.e., the communication key pair comprises the public key and the 
secret communication key) , upon utilization of the [th e [s i c]] password orfy 
r es p e ct i v e ly,] of the PIN as an initial value. 

1 13 In this way, a fusion of the password technology customary to the user of a 
conventional computer network o r[, r e sp e ctiv el y,] of a conventional computer with 
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the intense cryptology is inventively achieved without considerable efforts being 
necessary in order to permanently store [ se cr e t] private key material. 

14 Preferred embodiments of the [inv e nt i on d e r i v e from th e d e p e ndent cla i m s . 

Imethod and associated apparatus for implementing the method are provided 
as follows. The inventive method may further comprise the steps of: 
supplying the initial value to a hash function; and determining, using a hash 
function value formed by the hash function, the key pair and the 
communication key pair. The formation of the communication key pair may 
further include additional data characterizing the user. The method may 
further comprise the steps of: determining a prime number based on the initial 
value, where, in an iterative method, the following steps are performed: 1) 
checking the initial value or a previously checked number, producing a 
checked number, to determine whether the checked number is a prime number 
and (determination of primacy), and if the checked number is a prime, storing 
an index, which refers to a plurality of numbers, which have been checked with 
respect to their property of being prime; and 2) selecting, when the number is 
not a prime number, another number based on the checked number and the 
index, the checked number being increased by a prescribed number; where 
the method further comprises the steps of: erasing a used prime number after 
the communication key pair has been formed; and forming, with the index and 
the initial value, a new communication key pair for forming the secret 
communication key. 

15 The inventive methods and associated apparatus are described in more 
detail below, 

16 In an embodiment of the invention, a hash function is applied to the initial 
value, [wh e r e by] providing a value {is} being formed that is finally used for the key 
generation. Furthermore, additional data, which preferably characterize the user 
himself, can be used during the key generation. The RSA method for the key 
generation is preferably used for forming the cryptographic key. The method 
according to the MD-5 standard, the MD-2 standard or the Data Encryption Standard 
(DES) can be used as a hash function [c a n b e u se d [ si c]] . The communication key 
pair can be used for enciphering or for securing the integrity of electronic data, for 
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forming a digital signature via electronic data or for authenticating a userH- 
generally for any arbitrary cryptographic operation using the [APub li c - K e y - 
T e chno l ogy@, wh e r e bvl "Public-Kev-Technoloqy" that uses the formed 
communication key pair [i s ut il iz e d. 

L 

17 For accelerating the method, it is advantageous in an embodiment to store an 
index (accelerating code) when the [ se cr e t e ] private key is formed [, which ind e x is 
r e f e rr e d to as a cc e l e rating cod e i n th e fo l lowing] . The accelerating code indicates 
how often numbers - proceeding from the initial value - have been checked to the 
effect whether or not the respective number is a prime number. The method 
according to Miller-Rabin is preferably used for checking the property whether a 
number represents a prime number. 

BRIEF DESCRIPTION OF THE DRAWINGS 

18 An exemplary embodiment of the invention is shown in the Figures and is 
subsequently explained in greater detail. 

[Shown ar e 

JFigure 1 tea flow diagram representing the method steps of the exemplary 
embodiment; 

Figure 2 [ a draw i ng] is a block diagram representing a computer network 
having a plurality of computers coupled to one another; and 

Figure 3 is a symbolic block drawing representing the course of action for 
determining a prime number on the basis of an initial value. 

DESCRIPTION OF THE PREFERRED EMBODIMENTS 

19 Figure 2 shows a plurality of computers 200, 210, 220, 230, 240, 250 f which 
are connected to one another via a communication network 260. Each computer 
200, 210, 220, 230, 240, 250 respectively has a plurality of input [mean s ,] devices, 
i.e.* a keyboard 206, 216, 226, 236, 246, 256, a mouse 207, 217, 227, 237, 247, 
257, a scanner (not shown) or a camera (not shown). The entered information is 
supplied to a memory 202, 212, 222, 232, 242, 252 via the respective input [mean s ] 
device via an input interface/output interface 201 ,211, 221 , 231 , 241 , 251 and is 
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stored. The 202, 2212, 222, 232, 242, 252 memory is connected to the input 
interface/output interface 201 , 21 1 , 221 , 231 , 241 , 251 via a bus 204, 214, 224, 234, 
254. A processor 203, 213, 223, 233, 243, 253, which is set up such that the 
following methods steps can be carried out, is also connected to the bus 204, 214, 
224, 234, 254. 

20 The computer 200, 210, 220, 230, 240, 250 communicate via the 
communication network 260 according to the Transport Control Protocol/Internet 
Protocol (TCP/IP). The communication network 260 also contains a certification unit 
270 with which a certificate is prepared respectively for a public key, so that the 
public key is trustworthy for a communication on the basis of the [APub li oK e y - 
T e chno l ogv@1 "Public-Kev-Technology" . A user 280 enters an arbitrary 
prescribable word (PIN, password), which is only known to the user, into a first 
computer 200 (step 101, compare Figure 1). 

21 According to the RSA method, the first computer 200 generates an 
asymmetric cryptographic key pair, as described in the following. The value 102 
entered by the user 280 and additional data 103 characterizing the user 280, such as 
user name, personal number, terminal address etc., are supplied to a hash function 
(step 104). The H31 cont a in s a n ov e rvi e w r e gard i ng h as h funct i on s . A1 hash function 
is [ a function, wh e rein i t is not po ss ibl e to c al culat e a corr es ponding i nput v al u e to a 
g i v e n funct i on v al u e . Furth e rmor e , an output ch a r a ct e r s tr i ng h a v i ng a fix e d l e ngth i s 
a ll ocat e d to an a rb i trar il y l ong input ch a r a ct e r s tring. Mor e ov e r, add i t i ona l ! defined 
and has properties as described above [c a n b e r e qu es t e d for th e ha s h funct i on. 
Such an additiona l prop e rty is co llisi on fr ee dom, i . e ., i t is not al l ow e d to b e po ssi bl e 
to find two d i ff e r e nt i nput ch a ract e r s tr i ng s r es u l t i ng i n th e sa m e output ch a r a ct e r 
s tr i ng. 

Exampl e s of a hash funct i on a r e th e m e thod according to th e MD-2 s t a nd a rd, the 
m e thod accord i ng to th e MD - 5 s tandard, th e Data Encryption St a nd a rd (DES), wh i ch 
is carr ie d out without ut i l i zing a k e y, or any oth e r arb i tr a ry ha s h function] . The value 
formed by the hash function is used as a base value BW for forming two prime 
numbers, as symbolically shown in Figure 3. As shown in Figure 3, it is respectively 
checked for a value Wi (i = 1 , n) in an iterative method, on the basis of the base 
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value BW, whether or not the respective value represents a prime number (step 
301). 

22 The method according to Miller-Rabin is utilized as method for checking the 
property prime for a number (see Menezes). If the numberff 44^ 



4t4tJ is determined [for a number th a t th e numb e r do es not r e pr ese nt a prim e numb e r] 
to not be prime , the number is increased by a prescribable value, preferably by the 
value 2 (step 302) and the test with respect to the property fApr i m e @1 "prime" is 
repeated (step 301). This course of action is repeated until two prime numbers - a 

10 first prime number {PJ e and a second prime number q - have been determined. 

[R e f e rr e d] 23 A number, referred to as an index [ is a numb e r i nd i c a ting] , indicates 
how often - on the basis of the base value [PW [ si c]] BW - the number must be 
increased by the prescribed value until the first prime number p or [, r e sp e ct i v e ly,] the 
second prime number q is obtained. The result of the method shown in Figure 3 is 

is two prime numbers p and q, which are used for the key generation according to the 
RSA method (step 105). The prime numbers p and q normally have a length of a 
[p l ura l ity] multiple of 100 {bit} bits . A modulus n is formed from the prime numbers p 
and q according to the following rule: 

20 n = p*q. (1) 

24 Furthermore, an intermediate variable fo(ft #<p (n) is formed according to the 
following rule: 



25 A secret key d is now selected such that the secret key d is relatively prime 
with respect to {f*}<|> (n). A public key e is determined such that the following rule is 
fulfilled: 



5 



25 [rM(p (n) = (p-1) 



(q-1). 



(2) 



30 



e * d [mop n(n)1 mod q> (n) = 1. 



(3) 
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26 The value d is the {secret} private key and is not allowed to {make} be made 
known to a third party. A [Th e r e for e , a ] private key d (step 1 06) and a public key e 
(step 107) have been formed as a result of the key generation (key 105). The two 
keys d, e form a cryptographic key pair corresponding to one another, this key pair 
being used for an arbitrary cryptographic operation, i.e.* for enciphering, deciphering, 
for {the} a digital signature x or for authenticating (step 108). 

27 After the key pair d, e has been formed according to the above-described 
method, the [ se cr e t] private key d is erased. The public key e is supplied to the 
certification entity 280. A certificate Certe is formed by the certification entity 280 via 
the public key e and the certificate Certe of the public key e is stored in a directory 
290 that can be accessed by the public. Therefore, each communication participant 
in the communication network 280 can access the public key e via the certificate 
Certe of the public key e. The secrete key d corresponding to the public key e is 
erased in the first computer 200. 

28 Every time {when} that the user 280 wishes to initial a communication on the 
basis of the key pair or [, r e sp e ct i v el y,] when the user 280 wishes to carry out a 
cryptographic operation upon utilization of such a key pair, the user [208 [ si c]] 280 
enters his initial value (PIN, password) into the first computer 200 and the initial 
value 102 (as described above), in turn, is provided with additional data 103H. It is 
then subjected to a hash function (step 104) and, on the basis of the base value BW, 
two prime numbers p and q are determined or a stored index (as described above) is 
read out or is also entered by the user 280 and a [ se cr e t e ] secret communication 
key is formed [th e r e from] from it , which, however, corresponds to the [ se cr e t e ,] 
private previously formed key d, which has been erased again. 

29 In this way, a communication key pair has been formed, which comprises the 
[ se cr e t e ] secret communication key and the corresponding public key e. For a 
communication session, a user can thus respectively [curr e nt l y] immediately 
generate the [ se cr e t e ] secret communication code, so that it is possible to use 
intense fAPub l ic - K e v - Techno l ogv@ 1 "Public-Kev-Technology" without having to 
store the [ se cr e t e ] secret key on a chip card. The [thu s ] generated communication 
key pair d, e is used for enciphering plaintext 109 with the public key e and for 
deciphering the electronic, enciphered data 110 with the [s e cr e t e ] secret 
communication key. 
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30 Figure 1 symbolically shows the processing of plaintext 109, i.e., electronic 

data 109 that can be read by everybody, as well as enciphered electronic data 110, 

[wh e r e by] where the communication device is respectively [d es cr i bes] described by 

an arrow toward o r[, r es p e ct i v el y,] from the block representing a cryptographic 

5 operation 108. 
rrpiri 

LL 0, u| 



131 The enciphering or, respectively, deciphering is performed according to the 
following rules: 

10 

m e mod n = c, (4) 



fwh e r e by] where 



is - m refers to a quantity of 512 bit of electronic data 109 to be enciphered, 
- c refers to enciphered electronic data 110. 



32 The deciphering of the enciphered electronic data c is performed according to 
the following rule: 

20 

m = c d mod n. (5) 



33 A few alternatives of the above-described exemplary embodiment are 
explained as follows, [ i n th e fo ll ow i ng: 

25 

] The method can be used for enciphering, for securing integrity and for {the} a 
digital signature of electronic data. Furthermore, the invention can be utilized in the 
field of secure electronic mail systems. The user must not necessarily enter the 
initial value 102 during the generation of the key pair at the beginning of the method, 
30 but a central unit generating the key pair can prescribe it to the user. Therefore, the 
user must merely remember a password or [, r es p e ctiv el y,] a PIN A and it is no longer 
necessary to securely store a [ se cr e t e ] secret cryptographic key, for example* on a 
chip card, [this b ei ng] which is associated with corresponding risks and with 
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considerable outlay. Instead of a hash function, any arbitrary one-way function can 
be used in the framework of the invention. 

fTh e fol l ow i ng publ i c a t i on s hav e b ee n c i t e d in th e fram e work of th is docum e nt.1 34 

The above-described method and arrangement are illustrative of the 
principles of the present invention. Numerous modifications and adaptations 
will be readily apparent to those skilled in this art without departing from the 
spirit and scope of the present invention. 
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Abstract 

15 

M e thod and a rrang e m e nt for form i ng a se cr e t e communicat i on k e y for a 
pr e d e t e rm i n e d a s ymm e tric cryptographic k e y pair 

}35 After a key pair with a public key and a corresponding [ se cr e t e ] private key 
20 has been determined on the basis of an initial value, the initial value is made 

available to a user. The [ se cr e t e ] private key can then be erased. When the user 
wishes to carry out a cryptographic operation based on the [APub li c - K e y - 
T e chno l ogv^ r Public-Kev-Technology" , the user enters the initial value into a 
computer and, upon utilization of the initial value, a [ se cr e t e ] secret communication 
25 key is formed, which corresponds to the [ se cr e t e ] private key that had been 
previously formed but was then erased [ si nc e .} . 
[Sign. Figur e 1 ] 
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1 . [M e thodl (Amended) A method for forming a [ se cr e t e ] secret 
communication key for a predetermined asymmetric cryptographic key pairH which 
comprises a [ se cr e t e ] private key and a corresponding public key, by a computer, 
comprising the steps of: 

utilizing [ a ) wh e r e by] a prescribable initial value [ha s b ee n u se d] given {the} a 
determination of {the} said key pairfc}; 

[b) wh e r e by th e ] providing said initial value [ is mad e avai l abl e ] to a user^k 

[c) wh e r e by th e u se r e nt e r s th e ] entering, by said user, said initial value into 
{the} said compute r; andH 

[d) wh e r e by th e se cr e t e ] forming said secret communication key [ is form e d] 
upon utilization of {the} said initial value, [wher e by th e se cr e t e ] said secret 
communication key and {the} said public key [form] forming an asymmetric 
cryptographic communication key pair. 

2. fM e thodl (Amended) The method according to claim 1 , further 
comprising the steps of: 

supplying said [wh e r e by th e ] initial value [i s s upp lie d] to a hash function 
[ a nd th e ] ; and 
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determining, using a hash function value formed by {the} said hash 
function [is us e d for d e t e rm i n i ng th e ] , said key pair and {the} said communication 
key pair. 



5 3. [M e thod U Amended) The method according to claim 1 further 

comprising the step of: 

[wh e r e by] including additional data characterizing {the} said user {afe 
ut ili z e d] when {the} said key pair and {the} said communication key pair are formed. 



io 4. [M e thod U Amended) The method according to [on e of th e cla i m s 1 to 3,] 

claim 1 t further comprising the steps of: 

[ - wh e r e by] determining a prime number [ i s d e t e rm i n e d on the ba s is of th e ] 
based on said initial value, [wh e r e by] where , in an iterative method, {it-is} the 
following steps are performed: 

is checking said initial value or a previously checked number, 

producing a checked number, to determine whether [th e r es pect i v el y] said 
checked number is a prime number and [wh e n th is is th e cas e , 1 (determination of 
primacy), and if said checked number is a prime, storing an index [ is stor e d] , 
which refers to a plurality of numbers, which have been checked with respect to their 

20 property [wh e th e r th e y ar e ] of being prime; and 

selecting, when said number is not a prime number, [ is s tor e d [ si c], 
- oth e rw i s e ,] another number [ is sele ct e d on th e ba sis of th e ] based on said 
checked number and [th e i nd e x is ] said index, said checked number being 
increased by a prescribed number^}; 

25 f - wh e r e by th e I said method further comprising the steps of: 

erasing a used prime number [ is e r ase d] after {the} said communication key 
pair has been formed ; and H 

[wh e r e by th e ind e x a nd th e ] forming, with said index and said initial value 
[ a r e r es p e ct i v el y us e d for form i ng^ a new communication key pair for forming {the 

30 se cr e t e ] said secret communication key. 
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5. [M e thodl (Amended) The method according to claim 4, wherein said 
determination of primacy for any given number [wh e r e by th e t es t, wh e th e r a 
numb e r is a prim e numb e r,] is carried out according to the method of Miller-Rabin. 

6. fM e thodl (Amended) The method according to claim 1 wherein [on e of 
th e claims 1 to 5, 

wh e r e by th e ] keys are formed according to the RSA method. 

7. fM e thodl (Amended) The method according to claim 2 wherein said {ef*e 
of th e c la im s 2 to 6, 

wh e r e by th e ] hash function is selected from the group consisting of the methods 

[on e of th e fo ll ow i ng m e thod s : 

-JMD-5 method, thef-1 MD-2 method, and [ - th e m e thod accord i ng to] the Data 
Encryption Standard (DES) method as a one-way function. 

8. [M e thodl (Amended) The method according to claim 1. further 
comprising the step of: [on e of th e claim s 1 to 7, 

u se d for] 

enciphering electronic data with [th e se cr e t e ] said secret communication key. 

9. [M e thodl (Amended) The method according to claim 1. further 
comprising the step of: [on e of th e c l a i m s 1 to 7, 

u se d for] 

forming a digital signature via electronic data [upon uti li zat i on of th e s ecr e t e ] 
using said secret communication key. 

1 0. [M e thodl (Amended) The method according to claim 1, further 
comprising the step of: fon e of th e c lai m s 1 to 7. 

u se d for] 
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authenticating [upon ut il izat i on of th e se cr e t e ] data using said secret 
communication key. 

1 1 . [Arr a ng e m e nt K Amended) An arrangement for forming a [ se cr e t e ] 
5 secret communication key for a predetermined asymmetric cryptographic key pairfrj 
which comprises a [ se cr e t e ] private key and a corresponding public key, [w i th a 
^ comprising: 

an input device configured for entering an initial value by a user; and 
a processor [b e ing se t up s uch that th e fol l ow i ng s t e p s can b e c a rr ie d out: 
10 ^connected to said Input device, said processor configured to: 

[- th e k e y p ai r h as b ee n d e t e rm i n e d upon ut ili z a tion of a] determine, 
using said prescribable initial value, said asymmetric cryptographic key pair: 

accept entry of saidf — the} initial value {is} made available to [ a u se r,] 
said user; and 

is [ - th e u se r e nt e r s th e initia l va l u e into th e comput e r, 

- th e se cr e t e ] form said secret communication key [ is form e d upon util i zat i on of th e ] 
using said initial value, [wh e r e by th e se cr e te] where said secret communication 
key and {the} said public key form a communication key pai r[, and] . 

20 [w i th a n i nput m e an s for e nt e r i ng th e i n i tia l va l u e by th e u se r. 

1 2. Arr a ng e m e nt] 12. (Amended) The arrangement according to claim 1 1 , 
wherein said [wh e r e by th e ] processor is [ se t up] configured such that {the} said 
initial value is supplied to a hash function and {the} a hash value formed by the hash 
25 function is used for determining {the} said asymmetric cryptographic key pair and 
the communication key pair. 

13. [Arrang e m e nt K Amended) The arrangement according to claim 1 1 A 
wherein said fop4£r 
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wh e r e by th e ] processor is [ se t up] configured such that additional data 
characterizing {the} said user are utilized during {the} said formation of {the} said 
asymmetric cryptographic key pair and {the} said communication key pair. 

5 14. [Arr a ng e m e ntl (Amended) The arrangement according to claim 11, 

wherein said [on e of th e claim s 11 to 13. 
wh e r e by th e ] processor is [ se t up s uch that I confiqured to: 

H determine a prime number [ is d e t e rmin e d on th e b as i s of th e ] based on 
said initial value, [wh e r e by] where , in an iterative methods-it}: 
10 said initial value or a previously checked number is checked^ 

producing a checked number, to determine whether [th e r es p e ct i v el y] said 
checked number is a prime number [ a nd wh e n th is is th e c ase ,1 (determination of 
primacy), and if said checked number is a prime, storing an index [i s stor e d] , 
which refers to a plurality of numbers, which have been checked with respect to their 
15 property [wh e th e r th e y ar e ] of being prime: and 

select, when said number is not a prime number, [i s s tor e d [ s ic], 
- otherw ise ,] another number [ i s sele ct e d on the b asis of th e ] based on said 
checked number and [th e i nd e x i s ] said index, said checked number being 
increased by a prescribed number^}; 
20 f - wh e r e by th e ] said processor further being configured to: 

erase a used prime number [ is e r ase d] after {the} said communication key 
pair has been formed ; and M 

[- wh e r e by th e ] form, with said index and {the} said initial value {a*e 
r es p e ctiv el y u se d forform i ngk a new communication key pair for forming {the 
25 secre t e] said secret communication key. 

15. [Arrang e m e nt] (Amended) The arrangement according to claim 14, 
wherein said [wh e r e by th e ] processor is [ se t up s uch that th e t es t, wh e th e r a 
numb e r is a pr i m e numb e r, is p e rform e d] configured carry out said determination 
30 of primacy according to the method of Miller-Rabin. 
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1 6. rArr a ngem e ntl (Amended) The arrangement according to claim 11, 
wherein said fon e of th e cl ai m s 11 to 15. 

wh e r e by th e ] processor is [ se t up s uch that th e ] configured to form keys {afe 
5 form e d] according to the RSA method. 

1 7. fArrang e m e ntl (Amended) The arrangement according to claim 12, 
wherein said fon e of th e cl ai m s 12 to 16. 

wh e r e by th e ] processor is [ se t up s uch that th e ] configured to produce said hash 
10 function [ is on e of th e fo ll owing m e thod s 

. M e t h od] according to a method selected from the group consisting of the f one 
of th e cla i ms 2 to 6, 

wh e r e by th e h as h funct i on i s on e of th e fol l ow i ng m e thod s : 
-JMD-5 method, theH MD-2 method, and f - the m e thod accord i ng to] the Data 
is Encryption Standard (DES) method as one-way function. 

1 8. [M e thod K Amended) The arrangement according to claim 11 [on e of th e 
c l aim s 1 1 to 17, 

} used for enciphering electronic data with [th e se cr e t e ] said secret communication 
20 key. 

1 9. rArr a ng e m e ntl (Amended) The arrangement according to claim 11 [one 
of th e c l a i m s 11 to 17, 

J used for forming a digital signature via electronic data upon utilization of {the 
25 se cr e t e ] said secret communication key. 

20. rArr a ng e m e ntl (Amended) The arrangement according to claim 11 {ooe 
of th e c la im s 1 1 to 17, 

} used for authenticating data upon utilization of [th e se cr e t e ] said secret 
30 communication key. 
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